CISA Issues Emergency Directive for Cisco SD-WAN Vulnerabilities
Summary
Hide ▲
Show ▼
CISA has issued Emergency Directive (ED) 26-03 to mitigate vulnerabilities in Cisco SD-WAN systems, which pose an unacceptable risk to federal networks. The directive requires immediate action from Federal Civilian Executive Branch (FCEB) agencies to inventory, collect artifacts, patch, hunt for evidence of compromise, and implement hardening measures. The directive follows collaborative efforts with international partners and emphasizes the critical need for immediate response due to the ease of exploitation of these vulnerabilities.
Timeline
-
25.02.2026 14:00 1 articles · 8h ago
CISA Issues Emergency Directive for Cisco SD-WAN Vulnerabilities
CISA issued Emergency Directive (ED) 26-03 on February 25, 2026, requiring immediate action from Federal Civilian Executive Branch (FCEB) agencies to mitigate vulnerabilities in Cisco SD-WAN systems. The directive includes steps for inventorying systems, collecting artifacts, patching vulnerabilities, hunting for evidence of compromise, and implementing hardening measures. The directive follows collaborative efforts with international partners and emphasizes the critical need for immediate response due to the ease of exploitation of these vulnerabilities.
Show sources
- Immediate Action Required: CISA Issues Emergency Directive to Secure Cisco SD-WAN Systems — www.cisa.gov — 25.02.2026 14:00
Information Snippets
-
CISA issued Emergency Directive (ED) 26-03 to address vulnerabilities in Cisco SD-WAN systems.
First reported: 25.02.2026 14:001 source, 1 articleShow sources
- Immediate Action Required: CISA Issues Emergency Directive to Secure Cisco SD-WAN Systems — www.cisa.gov — 25.02.2026 14:00
-
The directive requires agencies to inventory, collect artifacts, patch, hunt for evidence of compromise, and implement hardening measures.
First reported: 25.02.2026 14:001 source, 1 articleShow sources
- Immediate Action Required: CISA Issues Emergency Directive to Secure Cisco SD-WAN Systems — www.cisa.gov — 25.02.2026 14:00
-
Vulnerabilities CVE-2026-20127 and CVE-2022-20775 are specifically mentioned for patching.
First reported: 25.02.2026 14:001 source, 1 articleShow sources
- Immediate Action Required: CISA Issues Emergency Directive to Secure Cisco SD-WAN Systems — www.cisa.gov — 25.02.2026 14:00
-
CISA collaborated with international partners including NSA, ASD's ACSC, Cyber Centre, NCSC-NZ, and NCSC-UK.
First reported: 25.02.2026 14:001 source, 1 articleShow sources
- Immediate Action Required: CISA Issues Emergency Directive to Secure Cisco SD-WAN Systems — www.cisa.gov — 25.02.2026 14:00